Crypto++^® Library 5.6.5

Crypto++ Library is a free C++ class library of cryptographic schemes. The library contains the following algorithms:

Other features include:

• pseudo random number generators (PRNG): ANSI X9.17 appendix C, RandomPool, RDRAND, RDSEED, NIST Hash DRBG
• password based key derivation functions: PBKDF1 and PBKDF2 from PKCS #5, PBKDF from PKCS #12 appendix B
• Shamir's secret sharing scheme and Rabin's information dispersal algorithm (IDA)
• fast multi-precision integer (bignum) and polynomial operations
• finite field arithmetics, including GF(p) and GF(2^n)
• prime number generation and verification
• useful non-cryptographic algorithms
  • DEFLATE (RFC 1951) compression/decompression with gzip (RFC 1952) and zlib (RFC 1950) format support
  • hex, base-32, and base-64 coding/decoding
  • 32-bit CRC and Adler32 checksum
• class wrappers for these operating system features (optional):
  • high resolution timers on Windows, Unix, and Mac OS
  • Berkeley and Windows style sockets
  • Windows named pipes
  • /dev/random, /dev/urandom, /dev/srandom
  • Microsoft's CryptGenRandom and BCryptGenRandom on Windows
• x86, x64 (x86-64), x32 (ILP32), ARM-32, Aarch32 and Aarch64 code for the commonly used algorithms
  • run-time CPU feature detection and code selection
  • supports GCC-style and MSVC-style inline assembly, and MASM for x64
  • x86, x64 (x86-64), x32 provides MMX, SSE2, and SSE4 implementations
  • ARM-32, Aarch32 and Aarch64 provides EON and ASIMD implementations
• A high level interface for most of the above, using a filter/pipeline metaphore
• benchmarks and validation testing
• certain versions are available in FIPS 140-2 validated form

License

Crypto++ Library is copyrighted as a compilation and (as of version 5.6.2) licensed under the Boost Software License 1.0, while the individual files in the compilation are all public domain.

Platforms

The current version of Crypto++ supports the following compilers:

• VS2003 - VS2015
• GCC 3.2 - 7.0
• Clang 2.9 - 4.0
• Intel C++ Compiler 11 - 17.0
• Solaris Studio 12.1 - 12.5
• Xcode 3.0 - 7.3
• C++ Builder 2010 (for version 5.6.4)

For detailed build status and notes on various compiler/OS/CPU combinations as well as information about compiling earlier versions of Crypto++, please see this wiki entry.

What's new?

• 10/11/2016 - Version 5.6.5 released
  • maintenance release, recompile of programs recommended
  • expanded community input and support
    • 25 unique contributors as of this release
  • fixed CVE-2016-7420 (Issue 277, document NDEBUG for production/release)
  • fixed CVE-2016-7544 (Issue 302, avoid _malloca and _freea for MSC compilers)
  • shipped library in recommended state
    • backwards compatibility achieved with <config.compat>
  • Visual Studio project file cleanup
    • improved X86 and X64 MSBuild support
    • added ARM-based MSBuild awareness
  • improved Testing and QA
    • expanded platforms and compilers
    • expanded Coverity into OS X and Windows platforms
    • added Windows test scripts using Strawberry Perl
  • ported to MSVC 2015 SP3, Xcode 7.3, Sun Studio 12.5, GCC 7.0, MacPorts GCC 7.0, Clang 3.8, Intel C++ 17.00
• 09/11/2016 - Version 5.6.4 released
  • maintenance release, honored API/ABI/Versioning requirements
  • expanded community input and support
    • 22 unique contributors as of this release
  • fixed CVE-2016-3995
  • changed SHA3 to FIPS 202 (F1600, XOF d=0x06)
  • added Keccak (F1600, XOF d=0x01)
  • added ChaCha (ChaCha8/12/20)
  • added HMQV and FHMQV
    • Hashed and Fully Hashed MQV
  • added BLAKE2 (BLAKE2s and BLAKE2b)
    • C++, SSE2, SSE4, ARM NEON and ARMv8 ASIMD
  • added CRC32-C
    • C/C++, Amd64 CRC, and ARMv8 CRC
  • improved Rabin-William signatures
    • Tweaked roots e and f
  • improved C++11 support
    • atomics, threads and fences
    • alginof, alignas
    • constexpr
    • noexcept
  • improved GCM mode
    • ARM NEON and ARMv8 ASIMD
    • ARMv8 carry-less multiply
  • improved Windows 8 and 10 support
    • Windows Phone, Universal Windows Platform, Windows Store
  • improved MIPS, ARMv7 and ARMv8 support
    • added scripts setenv-{android | embedded | ios}.sh for GNUmakefile-cross
    • aggressive use of -march=<arch> and -mfpu=<fpu> in cryptest.sh
  • improved build systems
    • Visual Studio 2010 default
    • added CMake support (lacks FindCryptopp.cmake)
    • archived VC++ 5.0/6.0 project files (vc60.zip)
    • archived VS2005 project files (vs2005.zip)
    • archived Borland project files (bds10.zip)
  • improved Testing and QA
    • expanded platforms and compilers
    • added code generation tests based on CPU features
    • added C++03, C++11, C++14, C++17 testing
    • added -O3, -O5, -Ofast and -Os testing
  • ported to MSVC 2015 SP3, Xcode 7.3, Sun Studio 12.5, GCC 7.0, MacPorts GCC 7.0, Clang 3.8, Intel C++ 17.00
• 11/20/2015 - Version 5.6.3 released
  • fixed CVE-2015-2141
  • cleared most Undefined Behavior Sanitizer (UBsan) findings
  • cleared all Address Sanitizer (Asan) findings
  • cleared all Valgrind findings
  • cleared all Coverity findings
  • cleared all Enterprise Analysis (/analyze) findings
  • cleared most GCC warnings with -Wall
  • cleared most Clang warnings with -Wall
  • cleared most MSVC warnings with /W4
  • added -fPIC for 64-bit builds (off for 32-bit builds)
  • added HKDF class from RFC 5869
  • switched to member_ptr due to C++ 11 warnings for auto_ptr
  • initialization of C++ static objects, off by default
    • GCC and init_priotirty/constructor attributes
    • MSVC and init_seg(lib)
    • CRYPTOPP_INIT_PRIORITY disabled by default, but available
  • improved OS X support
  • improved GNUmakefile support for Testing and QA
  • added self tests for additional Testing and QA
  • added cryptest.sh for systematic Testing and QA
  • added GNU Gold linker support
  • added Visual Studio 2010 solution and project files in vs2010.zip
  • added Clang integrated assembler support
  • unconditionally define CRYPTOPP_NO_UNALIGNED_DATA_ACCESS for Makefile target 'ubsan' and at -O3
  • workaround ARMEL/GCC 5.2 bug and failed self test
  • fixed crash in MQV due to GCC 4.9+ and inlining
  • fixed hang in SHA due to GCC 4.9+ and inlining
  • fixed missing rdtables::Te under VS with ALIGNED_DATA_ACCESS
  • fixed S/390 and big endian feature detection
  • fixed S/390 and int128_t/uint128_t detection
  • fixed X32 (ILP32) feature detection
  • removed _CRT_SECURE_NO_DEPRECATE for Microsoft platforms
  • utilized bound checking interfaces from ISO/IEC TR 24772 when available
  • improved ARM, ARM64, MIPS, MIPS64, S/390 and X32 (ILP32) support
  • introduced CRYPTOPP_MAINTAIN_BACKWARDS_COMPATIBILITY_562
  • added additional Doxygen-based documentation
  • ported to MSVC 2015, Xcode 7.2, GCC 5.2, Clang 3.7, Intel C++ 16.00
• 8/31/2015 - Completed migration from ibiblio and Sourceforge to a stand alone installation and GitHub
• 02/20/2013 - Version 5.6.2 released
  • changed license to Boost Software License 1.0
  • added SHA-3 (Keccak)
  • updated DSA to FIPS 186-3 (see DSA2 class)
  • fixed Blowfish minimum keylength to be 4 bytes (32 bits)
  • fixed Salsa validation failure when compiling with GCC 4.6
  • fixed infinite recursion when on x64, assembly disabled, and no AESNI
  • ported to MSVC 2012, GCC 4.7, Clang 3.2, Solaris Studio 12.3, Intel C++ Compiler 13.0
• 8/9/2010 - Version 5.6.1 released
  • added support for AES-NI and CLMUL instruction sets in AES and GMAC/GCM
  • removed WAKE-CFB
  • fixed several bugs in the SHA-256 x86/x64 assembly code:
    • incorrect hash on non-SSE2 x86 machines on non-aligned input
    • incorrect hash on x86 machines when input crosses 0x80000000
    • incorrect hash on x64 when compiled with GCC with optimizations enabled
  • fixed bugs in AES x86 and x64 assembly causing crashes in some MSVC build configurations
  • switched to a public domain implementation of MARS
  • ported to MSVC 2010, GCC 4.5.1, Sun Studio 12u1, C++Builder 2010, Intel C++ Compiler 11.1
  • renamed the MSVC DLL project to "cryptopp" for compatibility with MSVC 2010
• 3/15/2009 - Version 5.6.0 released
  • added AuthenticatedSymmetricCipher interface class and Filter wrappers
  • added CCM, GCM (with SSE2 assembly), EAX, CMAC, XSalsa20, and SEED
  • added support for variable length IVs
  • added OIDs for Brainpool elliptic curve parameters
  • improved AES and SHA-256 speed on x86 and x64
  • fixed incorrect VMAC computation on message lengths that are >64 mod 128 (x86 assembly version is not affected)
  • fixed compiler error in vmac.cpp on x86 with GCC -fPIC
  • fixed run-time validation error on x86-64 with GCC 4.3.2 -O2
  • fixed HashFilter bug when putMessage=true
  • removed WORD64_AVAILABLE; compiler support for 64-bit int is now required
  • ported to GCC 4.3, C++Builder 2009, Sun CC 5.10, Intel C++ Compiler 11
• 5/16/2008 - Recovered from web host server crash. Now hosted by ibiblio.org.

Download

The downloads for the most recent Crypto++ 5.6 libraries are below. If you need older downloads, from Crypto++ 5.5 to Crypto++ 2.3, then visit the Downloads page. The Downloads page provides checksums for all releases hosted on the website.

Remember to use the "-a" auto-convert text files option when unzipping on a Unix machine. After downloading, please read the Readme.txt included in the zip archive for build instructions and other important notes.

While You Are Downloading

• Take a look at the related links page. It includes links to crypto libraries for other languages, products that use Crypto++, etc.
• Consider the list of recommended books for Crypto++ users.
• Examine the Crypto++ license agreement.
• Read the Crypto++ User Guide.
• Browse the Crypto++ Reference Manual.
• View these Crypto++ class hierarchy charts to see how Crypto++ is organized. Note that these charts only include a small number of actual algorithms as examples.
  • symmetric algorithms and hash functions
  • public key algorithms

FIPS 140-2 Validation

The following versions of Crypto++ have been validated by NIST and CSE for FIPS 140-2 level 1 conformance. Because only compiled executable code can receive FIPS validation, these versions are listed separately from the other source-code-only downloads. These download packages include the validated binary object, header files, API reference, and FIPS related documentation. Source code is also included for debugging purposes. (You cannot compile Crypto++ yourself and claim FIPS 140-2 conformance on the resulting module, unless the it goes through the validation process again.)

Because these packages contain compiled executable code, they have been signed with a PGP public key which is included inside the package. You can verify the PGP key's fingerprint by following the certificate link and obtaining a copy of the Crypto++ Library Security Policy from NIST's web site. The fingerprint is given in the Security Policy.

• Crypto++ Library 5.0.4 (32-bit Windows DLL, calling application must be compiled with MSVC 6.0) [download package] [download PGP signature] [certificate #343]
• Crypto++ Library 5.2.3 (32-bit Windows DLL, calling application must be compiled with MSVC .NET 2003) [download package] [download PGP signature] [certificate #562]
• Crypto++ Library 5.3.0 (32-bit and 64-bit Windows DLL, calling application must be compiled with MSVC 2005) [download package] [download PGP signature] [certificate #819]

Mailing Lists

There are two mailing lists for Crypto++. The first is cryptopp-announce@googlegroups.com, and the second is cryptopp-users@googlegroups.com.

• cryptopp-announce@googlegroups.com - Crypto++ administrative announcements (formerly at cryptopp-announce@lists.sourceforge.net)
• cryptopp-users@googlegroups.com - Crypto++ library user questions and general discussions (alternate archives are available at The Mail Archive and Nabble)

As a courtesy, please join the discussion list with your real name instead of an online handle. Alternate webviews are for the lists are available at Crypto++ Announce - Google Groups and Crypto++ Users - Google Groups.

When posting a question to the Crypto++ user mailing list, please provide the following information, if applicable:

• exact error message
• stack trace (please copy from the call stack window of your debugger, or use the "bt" command in gdb)
• a minimal program with a main() function, that reproduces the problem
• version of Crypto++, operating system (output of "uname -a" command if using Unix), and compiler (output of "gcc -v" if using GCC)

Source Code and Contributions

The source code and its planned changes are available at the following locations.

• The Crypto++ GitHub repository allows you to view the latest (unreleased) Crypto++ source code via the Linux kernel's git beginning around June 2015. Its also serves as an incubator to nuture and grow the library.
• The Roadmap on the wiki provides the general direction the library is heading. It includes planned features and releases, and even some wishlist items.

Contributions of all types are welcomed. Contributions include the following.

• Bug finding and fixes
• Features and enhancements
• Test scripts and test cases
• Branch and release testing
• Documentation and updates

If you think you have found a bug in the library, then you should discuss it on the Users mailing list. Discussing it will help bring the issue to the attention of folks who can help resolve the issue. If you want to contribute a bug fix to the library, then make a Pull Request or make a Diff available somewhere. Also see Bug Reports on the wiki.

Features and enhancements are welcomend additions to the library. This category tends to be time consuming because algorithms and their test cases need to be reviewed and merged. Please be mindful of the test cases, and attempt to procure them from an independent source.

The library cherishes test scripts and test cases. They ensure the library is fit and they help uncover issues with the library before users experience them. If you have some time, then write some test cases, especially the ones that are intended to break things.

Branch and release testing is your chance to ensure Master (and planned merges) meets your expectations and perform as expected. If you have a few spare cycles, then please test Master on your favorite platform. We need more testing on MinGW, Windows Phone, Windows Store, Solaris 10 (and below), and modern iOS and OS X (including TV and Watch builds).

Documentation and updates includes both the inline source code annotations using Doxygen, and the online information provided in the wiki. The wiki is more verbose and usually provides more contextual information than the API reference. Besides testing, documentation is one of the highest returns on investment.

Paid Support and Consulting

If you are interested in paid support for Crypto++ or consulting on a Crypto++ related project, then please see this list of companies and individuals providing services on the wiki. This listing is a free service for the Crypto++ community, and anyone may sign up to be listed by creating an account on the wiki.

Visitors since April 2014.